Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/q0404aoCS6Kb-A5yiddq_7jmRTA.roa
File: q0404aoCS6Kb-A5yiddq_7jmRTA.roa (raw, json)
Hash identifier: 15h1I+PH3Pn+4X/JpTG6jsWUi4vE5VFXkv6WAis8eqc=
Subject key identifier: AB:4E:34:E1:AA:02:4B:A2:9B:F8:0E:72:89:D7:6A:FF:B8:E6:45:30
Certificate issuer: /CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Certificate serial: 0188DB90DDB0FA5A05A11D02CE1AF18D0A0E
Authority key identifier: 6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/q0404aoCS6Kb-A5yiddq_7jmRTA.roa
Signing time: Wed 21 Jun 2023 01:28:04 +0000
ROA not before: Wed 21 Jun 2023 01:28:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.122.0/23 maxlen: 24
45.145.120.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:db:90:dd:b0:fa:5a:05:a1:1d:02:ce:1a:f1:8d:0a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Validity
Not Before: Jun 21 01:28:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab4e34e1aa024ba29bf80e7289d76affb8e64530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a7:04:1b:65:ed:ab:6e:5b:79:e1:a0:93:aa:
f5:78:6f:80:e6:17:40:66:54:b2:5e:70:1f:16:cb:
94:0b:69:df:a9:10:14:f7:7c:be:06:dd:aa:45:0e:
ee:b5:3a:5e:cc:2e:91:2b:d5:15:27:b3:a1:b7:18:
02:8a:0d:ca:09:53:ef:12:e9:94:6b:af:93:c5:6e:
21:93:0a:16:b8:c5:4b:28:c1:df:3b:74:75:e3:a7:
60:56:a0:cd:c5:e6:65:22:66:46:87:24:21:70:cb:
22:30:50:9d:ee:f1:fd:95:37:15:25:94:b1:15:8f:
cd:bb:cf:62:85:4a:c7:86:a4:9e:a9:83:60:d8:da:
ee:9a:a2:a4:64:8a:87:54:75:9f:6b:e3:40:61:0d:
2d:a6:28:23:6d:98:bc:b0:2a:ed:3b:38:7a:70:cc:
3c:c7:44:0a:85:fb:19:4f:08:8c:7e:9a:5d:d1:2d:
c1:52:a4:a0:d9:37:8e:6f:5e:c6:06:9d:8a:b6:cb:
d2:66:dd:63:47:5a:f8:1e:9f:e0:7a:9a:01:67:1f:
ab:80:1d:77:30:f4:8b:8c:c5:46:1b:01:50:35:15:
72:1e:81:bc:9b:10:16:38:3c:ff:e1:27:a9:3e:ba:
dc:30:82:a0:b4:67:69:96:52:76:a9:2b:ad:38:24:
87:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4E:34:E1:AA:02:4B:A2:9B:F8:0E:72:89:D7:6A:FF:B8:E6:45:30
X509v3 Authority Key Identifier:
keyid:6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/q0404aoCS6Kb-A5yiddq_7jmRTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/ag9YMNvEu6u2gnd-vThD11BInsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:5f:af:46:cf:f1:9e:ab:96:43:86:6f:53:71:41:c8:65:07:
d1:8f:51:61:3a:16:9d:cc:2a:ec:94:19:17:ef:bc:e8:39:8b:
10:25:12:c2:a8:7d:6d:08:ab:41:a0:74:e2:2c:2a:e1:62:2b:
f2:b9:15:c7:fb:21:2e:6f:1d:f5:dc:47:8a:d7:4c:a1:9e:8c:
81:d9:8b:9e:b8:8d:8b:14:fe:2d:ec:aa:bd:33:1e:35:96:c2:
3c:64:75:4e:2a:0d:eb:6b:97:fb:fc:5f:d0:c2:bd:f4:f8:aa:
9c:13:65:c8:96:69:12:17:e3:0c:cd:a6:4f:f5:f6:c1:26:d2:
4d:ec:7b:70:59:29:54:ea:e0:c9:63:42:4b:b0:7c:c3:e3:47:
d9:3e:0d:42:08:0a:c5:15:d6:22:a2:5c:b6:b4:8b:04:f3:99:
b8:75:4f:6f:3a:b3:06:d6:cd:65:fd:6c:af:93:09:77:77:f8:
22:05:a4:5f:be:0a:3c:27:2a:d3:88:d4:7a:c6:d3:b1:1d:73:
dc:6f:b7:3c:0b:55:00:34:e2:00:4a:39:4c:71:e4:ce:bd:77:
d7:27:57:b0:70:42:ad:04:a7:f9:a3:d9:56:92:fb:16:6b:7d:
4c:6a:80:84:6e:a3:57:c7:c4:24:37:72:c1:f8:f7:0a:83:fe:
ea:c4:d6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:03 2024 by rpki-client on console-ams.rpki-client.org